Publique en mi blog un tutorial de como actualizar las Jails de FreeBSD con Bastille.
Bastille es una herramienta para manejar jaulas en FreeBSD de manera facil y organizada.
#FreeBSD #BastilleBSD #tutorial #iagostoblog #websencilla
https://blog.iagosto.dev/entradas/actualizar-jails-con-bastille-en-freebsd
New video out 
Using Templates with #bastilleBSD on #FreeBSD (#Jails)
Enjoy 
On #youtube
https://youtu.be/t1nhPU43Bng
On #Odysee
https://odysee.com/@YetanotherSysAdmin:0/Using-Templates-in-Bastille-on-FreeBSD:1
New video out
Creating a #nginx #jail on #FreeBSD leveraging #bastilleBSD 
Enjoy
On #youtube
https://youtu.be/K_6OOLcghjg
On #Odysee
https://odysee.com/@YetanotherSysAdmin:0/Using-Bastille-to-create-Jails-on-FreeBSD:2
lo_if="lo1"
ext_if="vmx0"
jail_if="vmx0bridge"
#set block-policy return
scrub in on $ext_if all fragment reassemble
set skip on lo
set skip on $jail_if
table <jails> persist
nat on $ext_if from <jails> to any -> ($ext_if:0)
#nat on $ext_if from $jail_if:network to any -> ($ext_if)
#nat on $jail_if from $jail_if:network to any -> ($jail_if)
#nat on $lo_if from $jail_if:network to any -> ($lo_if)
rdr-anchor "rdr/*"
#block in all
pass out quick keep state
#antispoof for $ext_if inet
pass in inet proto tcp from any to any port ssh flags S/SA keep state
pass in on $ext_if inet proto icmp to ($ext_if) icmp-type { unreach, redir, timex, echoreq }
pass in on $ext_if inet proto icmp to ($jail_if) icmp-type { unreach, redir, timex, echoreq }
pass in on $jail_if inet proto icmp to $jail_if:network icmp-type { unreach, redir, timex, echoreq }
BastilleBSD can now create jails with static MAC addresses, and finally got rid of that pfctl call when NAT wasn't use 
But that's not all, https://github.com/BastilleBSD/bastille/releases/tag/0.12.20250111
#Bastillebsd on Freebsd works great for my one man, part time shop.
This account has been a little quiet lately, but there's been work going on in the background.
I hope to share more details soon. Watch for an announcement in the coming weeks.
BastilleBSD is one of the simplest ways to isolate and secure applications on FreeBSD.
Use Bastillefile to automate the setup of complex containers, saving time and reducing errors.
My long awaited and overdue #pebcak #guide to make your personal #Gemini #Capsule that you can own by yourself, has been issued! 
This is for all the people that like writing and sharing experience online, in a secure and safely manner, that promotes privacy and ownership of your data. 
This is not meant to build your IT career, please don't that if you really want pursue that path!
Gemini is the best way to manage and handle an online blog, but why? 
Because, it is:
Some very bad person will tell you can't personalize your Capsule as web does. Don't listen to them, as a pro designer I can tell you there is anything more far from the truth, and that such ridiculous statement is a brutal falsity. 
Any Capsule is different and reflect each writer personality, some capsule are amazing they way how are organized. It is incredible how very strict constraints don't stop the human being to be creative! 
I am not saying that all the capsules are cool, but surely I saw a lot of amazing capsules. If you won't accept this, I would tell you that 99% of the web blogs are a huge pile of crap instead, and even if you have the tools but you lack in skills you had better move on Gemini instead. 
Please, if you don't know what I am talking about, do a favor to yourself and download Lagrange:
https://gmi.skyjake.fi/lagrange/
You can learn more here:
And last but not least my guide!!! 
Main topics:
#FreeBSD the amazing unix-like operative system!
#BastilleBSD a great tool to handle FreeBSD jails!
#GMID the awesome software that serves my capsule!
freezr 
